Sternum’s Solution Beats BotenaGo Malware Targeting Millions of Devices in a Live Trial

Sternum | February 08, 2022

Sternum, the universal Internet of Things (IoT) cybersecurity and analytics platform provider, reveals a successful live-fire test of its smart device security platform against BotenaGo malware. Sternum’s unique solution, which looks out for generic fingerprints of an attempted attack to protect the device’s runtime integrity, kept an unpatched device protected in multiple attacks utilizing an exploit from the virus’s arsenal.

Botnet malware seeks out vulnerabilities in millions of IoT devices and uses those to deploy malicious payloads, granting the hacker control over affected targets. An advanced botnet like the infamous Mirai can build up an entire army of “zombified” devices that would then be used for denial-of-service attacks and other malicious activities. BotenaGo, the new addition to this malware class, first came up on radars in November 2021 as a sleek and dangerous virus, packing 33 vulnerabilities tailored to infect millions of routers. A lot of the exploits it relies on are command injections, which force the device to execute malicious OS commands and are ranked as one of the most dangerous software vulnerabilities. In January 2022, BotenaGo’s source code went up on GitHub, available for any rookie hacker to use at will, or add some of its exploits to their own custom malware.

Sternum pitted the malware against its unique IoT security solution in a live-fire trial on an off-the-shelf vulnerable device. First, the company’s team used a command injection exploit from the virus’s arsenal to infect an unpatched and unprotected Zyxel NAS326 cloud storage device. To confirm the successful attack, the security experts switched the light indicators on the device’s front on and off through the malware.

Then, Sternum researchers installed the company’s solution on the device, still unpatched, and ran the attack again multiple times. The solution successfully protected the cloud storage unit, striking down the infection attempts. It also automatically collected all the necessary forensics data such as timestamps and IP addresses involved in the attacks, pinpointing the vulnerabilities in the device’s firmware and offering automatic root-cause analysis.

Sternum’s single-click security solution gives any connected device the ability to protect itself against hacking attempts in real-time. It seeks out the generic fingerprints of various attack types such as command injection and buffer overflow to strike the attempted attack down and protect the runtime integrity of the secured device against both zero-day and one-day attacks. Its design fosters a proactive IoT security paradigm that ditches the need to play catch-up with hackers through long and costly patching. Sternum’s solution enables devices to actively defend themselves from novel pieces of malware even before security researchers identify them, as seen in the live demo.

“BotenaGo arms any script kiddo with a potent tool capable of infecting millions of devices. Patching takes time, and we know of a few cases where the devices were left vulnerable even after an available update. By beating the virus without the need for a patch, our platform once again proves itself as a powerful security platform that allows companies to always be one step ahead of the game. By focusing on generic fingerprints shared by all attacks instead of wasting time and money on patching specific vulnerabilities, it can defeat viruses that haven’t even been written yet.”

Natali Tshuva, Co-Founder and CEO of Sternum

About Sternum
Sternum, the provider of the first universal IoT platform for security and observability offering runtime protection and visibility to IoT devices, was founded in 2018 by 8200 veterans with a profound understanding of both defender and attacker mindsets. With a goal to deliver one unified and powerful platform to all IoT devices across sectors, Sternum set out to build an uncompromising, innovative technology. Sternum’s product suite consists of two key solutions: Embedded Integrity Verification (EIV) and ADS (Analytics & Detection System); both answer the unique needs of IoT device-level protection and visibility in medical, industry 4.0, smart cities, energy, and beyond. 


Globally, more than 1.25 million people die in road traffic crashes every year and a further 50 million people are injured or disabled.¹ Meanwhile, congestion costs Australians $16.5 billion in 2015, according to the Bureau of Infrastructure, Transport and Regional Economics. The price of congestion is expected to double between $27.7 and $37.3 billion by 2030, without major policy changes.


Globally, more than 1.25 million people die in road traffic crashes every year and a further 50 million people are injured or disabled.¹ Meanwhile, congestion costs Australians $16.5 billion in 2015, according to the Bureau of Infrastructure, Transport and Regional Economics. The price of congestion is expected to double between $27.7 and $37.3 billion by 2030, without major policy changes.

Related News


Monnit launches ALTA IoT Gateway with cellular and Ethernet

Monnit | June 07, 2022

Monnit has unveiled its new ALTA Wireless IoT Gateway, which features a cellular and Ethernet platform for keeping ALTA Wireless Sensor networks connected to the Internet in a variety of situations and remote places. The cellular engine of the ALTA IoT Gateway supports 4G LTE Category M1 (CAT-M1) and NarrowBand-Internet of Things (NB-IoT) 2 technologies (NB2). Its RJ-45 Ethernet socket offers connectivity backup and allows for local device configuration and troubleshooting. The ALTA IoT Gateway is a dual-connection device that can function as a cellular gateway with Ethernet failover or as an Ethernet gateway with cellular failover. The ALTA IoT Gateway links to the iMonnit cloud software, which allows you to set up and operate ALTA Sensors from your mobile device or computer. Sensor data is protected, aggregated, and sent so you may log data and monitor important conditions around the clock. “IoT data is one of the most valuable assets. Our new ALTA IoT Gateway ensures it’s safe and available when you need it. The ALTA IoT Gateway’s reliable versatility is its most impressive feature, keeping IoT networks connected seamlessly everywhere from remote areas to main facilities,” Monnit Founder and CEO Brad Walters The ALTA IoT Gateway provides long-range radio frequency transmission with interference immunity for up to one mile (line-of-sight) and 1,200+ feet through 12+ walls, in addition to its wireless 4G LTE CAT-M1/NB2 cellular engine (non-line-of-sight). The ALTA IoT Gateway also has a battery backup of up to 60 hours, and GPS data is available for a price.

Read More


MULTIMEDIA UPDATE – Wi-Fi delivers strong IoT advantage

Wi-Fi Alliance | July 16, 2022

Global ubiquity and prominence in delivering the internet make Wi-Fi an obvious choice for connecting Internet of Things (IoT) devices in both residential and industrial environments. Wi-Fi is uniquely suited to support IoT products and applications with its wide-ranging capabilities and proliferation as a global standard. Wi-Fi will play a role in almost every IoT environment, either alone or alongside more specialized protocols or technologies. “Wi-Fi has been delivering the ‘internet’ in Internet of Things to more applications, more use cases, and more environments than any other IoT technology option,” said Edgar Figueroa, president and CEO, Wi-Fi Alliance. “The IoT is meant to enrich people’s lives, and Wi-Fi CERTIFIED solutions deliver the quality, reliability, and security that enable the IoT’s full potential.” “Wi-Fi addresses the needs of various device types and use cases in the IoT market,” said Phil Solis, research director, IDC. “Wi-Fi can deliver a wide range of data rates and ranges at varying price points because there are an abundance of Wi-Fi chips supporting different levels of complexity and several unlicensed spectrum bands from sub-1 GHz to 6 GHz. It is this diversity in chips designs that allow Wi-Fi to meet the broadest array of IoT product and network requirements.” Wi-Fi Alliance outlines eight Wi-Fi competencies that should be considered when selecting an IoT technology: Standards-based, interoperable technology: The promise of IoT is founded on a wide range of device manufacturers. Wi-Fi provides a common platform to deliver a growing range of IoT applications that vary in performance, power, and latency requirements. Wi-Fi CERTIFIED™ delivers confidence that billions of devices will interoperate and provide a quality user experience regardless of product brand. Pervasive connectivity: IoT systems are often controlled through mobile devices, and Wi-Fi allows seamless control of smartphones, tablets, and 18 billion Wi-Fi devices already in use today to help unlock the full potential of the IoT. Pervasive global connectivity empowers users and network operators to connect and control a unified system. Proven WPA3™ security: Sensitive government, industrial, and personal information is exchanged through IoT applications. Wi-Fi delivers proven, WPA3™ security to protect information exchanged in personal and enterprise environments. Choosing Wi-Fi CERTIFIED IoT devices ensures data is protected with the latest, enterprise-grade security protocols. Cost effective, simple deployment: Wi-Fi is an easy-to-deploy and cost-effective foundation that requires no separate gateways or specialized skills to deliver IoT applications. Wi-Fi is relied on and deployed by users worldwide every day, and continues to evolve to simplify device pairing, network authentication, and more. Backward compatibility: Wi-Fi is a smart investment for IoT product architects who consider cost, reliability, and support in future-proofing their technology investment. Wi-Fi will stand the test of time which minimizes the risk of premature obsolescence and ensures legacy devices can easily connect to home networks. Location awareness: Wi-Fi Location™ delivers sub-meter-level location information that allows a range of location-aware IoT services for industrial and smart city environments, enabling enhanced benefits such as asset management, network management, and geo-fencing. Reliable, sophisticated connectivity: Home and industrial IoT networks require consistent and reliable connectivity. Wi-Fi 6 networks deliver sophisticated network efficiency, diagnostics, management, and optimization capabilities. Wi-Fi 6 and Wi-Fi 6E handle many simultaneously connected devices and heavy data throughput while delivering high performance and low latencies for applications including 4K video streaming and AR/VR. Wi-Fi 6 and Wi-Fi 6E also allows devices, such as manufacturing robots, and drones, to remain connected even as they move or “roam” throughout home or industrial networks. Flexible network topology: In addition to a traditional Wi-Fi connection through access points, Wi-Fi CERTIFIED EasyMesh™, Wi-Fi CERTIFIED Wi-Fi Aware™, and Wi-Fi CERTIFIED Wi-Fi Direct offer a variety of network topologies to different IoT environments for scalable and customizable options to meet IoT network and IoT application needs. Wi-Fi offers more flexible topology options to network managers for IoT network connections than solely star or mesh topologies. Wi-Fi’s extensive portfolio addresses IoT use cases that support high throughput and low latency applications, such as AR/VR, and long range, low power requirements for asset tracking applications or rural irrigation systems. Wi-Fi Alliance certifications, including Wi-Fi CERTIFIED 6™, Wi-Fi CERTIFIED HaLow™, Wi-Fi CERTIFIED Easy Connect™, and Wi-Fi CERTIFIED QoS Management™ deliver capabilities to meet unique IoT requirements across residential, industrial, and other IoT environments. The enormous potential of the IoT market has resulted in devices brought to market without sufficient testing, delivering a less-than-optimal user experience. Wi-Fi CERTIFIED devices meet high quality standards for the latest security, interoperability, and a range of application-specific protocols to deliver a good experience for users and network operators. “Wi-Fi plays a crucial role in enabling industrial IoT use cases and helping companies achieve desired business outcomes in this important market sector. At Aruba, as part of Aruba ESP, we are working with our customers and our partner ecosystem to ensure secure, seamless IoT connectivity to enable hyper-aware facilities. By building GPS and Wi-Fi Location capabilities into our wireless technology, our wireless access points are equipped to automatically locate themselves and provide highly accurate indoor positioning – empowering wayfinding, asset tracking, and people tracking use cases in industrial IoT environments.” – Chuck Lukaszewski, VP and Wireless CTO at Aruba, a Hewlett Packard Enterprise company About Wi-Fi Alliance Wi-Fi Alliance is the worldwide network of companies that brings you Wi-Fi. Members of our collaboration forum come together from across the Wi-Fi ecosystem with the shared vision to connect everyone and everything, everywhere, while providing the best possible user experience. Since 2000, Wi-Fi Alliance has completed more than 70,000 Wi-Fi certifications. The Wi-Fi CERTIFIED™ seal of approval designates products with proven interoperability, backward compatibility, and the highest industry-standard security protections in place. Today, Wi-Fi carries more than half of the internet’s traffic in an ever-expanding variety of applications. Wi-Fi Alliance continues to drive the adoption and evolution of Wi-Fi, which billions of people rely on every day.

Read More


In-depth Technical Sessions at the LoRaWAN World Expo Prepare Businesses for Success

LoRa Alliance | June 13, 2022

The LoRa Alliance, a global organization of enterprises that support the open LoRaWAN standard for the internet of things (IoT) low-power wide-area networks (LPWANs), today unveiled the full program for the LoRaWAN World Expo, which will take place July 6-7, 2022, at the Palais des Congrès in Paris. The alliance has completed the event agenda with a strong technology track for developers, engineers, and system integrators, after earlier announcing program highlights and the environmental, social, and governance (ESG) track. "The LoRaWAN World Expo will be the most engaging IoT event of the year, where attendees will not only network with industry thought leaders, but also be fully immersed in hands-on technical demonstrations and exhibits. Come and learn every aspect of the LoRaWAN standard and why it's the market leading IoT LPWAN solution. Benefit from the rich knowledge base of the LoRa Alliance ecosystem and have your technical questions answered," Donna Moore, CEO and chairwoman of the LoRa Alliance Using data from Elsys, Parametric, and Sensative sensors located around the facility, an Actility ThingPark Enterprise LoRaWAN private network will report live temperature, humidity, light, carbon dioxide, and occupancy statuses during the event. The sensor data will be sent through a LoRaWAN network by Motorola Solutions and displayed using IoThink's KHEIRON Studio. Fifty people will be given Abeeway smart badges, whose whereabouts will be updated in real-time on the event floor layout. "In the seven years since the LoRa Alliance was formed, we have continuously evolved the LoRaWAN standard, with a focus on security, ease of deployment and certification tools," Moore added. "To address the expansive IoT market, our members also actively collaborate with other standards to jointly develop solutions for key use cases. This ensures each application's specific technical requirements are met and the right solutions to solve the market need are deployed. If you are a developer, engineer or system integrator, there will be no better opportunity this year to engage with the leading experts in LoRaWAN technology."

Read More